| In this issue |
| Test your SOD Compliance IQ |
| EZ-Compliance Benefits - Customer Testimonials |
| Special Year End Offers & Bonuses |
| EZ-Process, to address all your BPM, Compliance and Workflow requirements |
Test your SOD Compliance IQ ...
You operate Infor Baan and/or other ERP/Enterprise solutions? You've been busy at it for now several years and you believe your Baan authorizations are set the right way to facilitate their Segregation of Duties (SOD) validation? Or on the contrary, you simply do not see the light at the end of the tunnel? We challenge you with the following facts ...
DID YOU KNOW ...
-
... that the Segregation of Duties (SOD) validation, critical business control responsible to validate employee's systems accesses, is not only a key requirement of Sarbanes-Oxley, but is a crucial component of any Corporate Governance Program, regardless of the location and size of your organization ...
-
... that external auditors will require your organization to demonstrate that all employee accesses to all enterprise systems are known at all time, and that none of these constitute a conflict of interest or business risk for the organization ...
-
... that the above accesses and conflicts be monitored on a frequent enough basis not only to identify fraud but also to prevent them ...
-
... that more than 550 Baan sessions have been identified as key SOD candidates targeted by internal & external auditors ...
-
... that a knowledge library identifying these is available for all Baan versions (Triton, IV, ERP-5 and LN, with or without Baan DEM) ...
-
... that this library not only list these 550 sessions, but most importantly, identify which precise combinations of these Baan sessions do constitute actual SOD conflicts ...
-
... that more than 16,500+ sessions combinations have been defined in rules able to fully automate the SOD validation process, similar to an anti-virus verification ...
-
... that these sessions and combinations have been validated by various auditors, accountants and Baan senior specialists to be complete and accurate ...
-
... that with such library, organizations such as Herman Miller (4,300 employees) is able to scan 250,000+ employee authorizations involving access to multiple applications (Baan, Hyperion, Oracle, SAP, Mapics and mainframe) in less than 15 minutes !! ...
-
... that with such library your organization can even prevent conflicts before they become reality by simulating employee's accesses to menus, user-roles, sessions, DEM processes, all of it in a preventive mode ...
-
... that the resulting Baan SOD library have been used by organizations such as Bio-Rad, Herman Miller, Komatsu, Immucor, Coopervision, Zebra Technologies, etc... to successfully pass their SOD audit with E&Y, KPMG, D&T and other auditors ...
|
|
|
1- The dynamic SOD Scan engine: Within minutes only, the EZ-Compliance SOD rule-based engine will:
|
|
2- SOD Rules Library of Baan conflicting sessions:
Corporations using the Infor Baan applications (any versions) can
benefit of the pre-defined Baan conflicting sessions
SOD library. Within minutes, this
library can be used by the SOD engine to scan your current
Baan authorizations (Baan Tools or DEM) and report back all conflicts found.
With little effort, you will know exactly which employee
accesses are to be resolved, documented or mitigated. And
since the scan process requires only minutes, you can launch
it as often as needed or schedule it as a daily business
control, keeping your SOD validation always
accurate no matter the frequent changes made to the
Employees -> Roles -> Menu/Process -> Sessions/Applications structure.
|
Similar to a KPI Dashboard, EZ-Compliance SOD Chart will dynamically display all SOD sensitive areas and highlight where SOD conflicts have been found (and how many have been identified). A single click will then show you all conflicts per functional area, what employee is accessing which applications, by what role/menu, and if these conflicts have been mitigated. All of it dynamically updated by the EZ-Compliance scan engine.
EZ-Compliance Benefits - Customer testimonials
From Bio-Rad Laboratories (Baan 4 & ERP-5; 5,000 employees):
“In
only 4 days, not only was EZ-Compliance installed and the training
completed, all our Baan authorizations (>120,000 records) were
loaded and scanned, resulting in the immediate identification of our
SOD conflicts. A real eyes opener for us! In addition, several
hundreds of our Bio-Rad Business Controls and Conflict Rules were
also loaded within the same 4 days!... Impressive“
Head of Internal Audit,
From Herman Miller (Baan 4; 4,500 employees):
(Customer Case Study available at http://www.ez-process.net/EZ-ProcessCD (EZ-Compliance section)
"After a comprehensive review, we have found that EZ-Compliance is
the best tool on the market to address the dual roles of defining
processes and embedding in them the business controls management
that insure their accuracy and integrity”.
BPM/DEM Manager
"Having worked in public accounting for years, I understand very
well what is required to become SOX certified and SOD compliant.
Operating EZ-Compliance at Herman Miller is not only enabling us to
scan approximately 200,000 user accesses every week across nine
systems (Baan, Mapics, Oracle, etc...), but allows us to immediately
identify and mitigate any SOD conflicts that could constitute a
business risk for our organization. To process this volume of data
on a weekly basis, we could not do it without EZ-Compliance. Our
auditors, both external (Big 4 firm) and internal, are impressed
with our capability to perform SOD scans in so timely a manner. In
fact, because the scans are so timely they are considered by our
auditors to be preventative".
Shared Services Controller
“In a
manner of minutes we are able to scan thousands of users, roles,
processes and applications! Not only we know precisely who is able
to access what, we have direct visibility of any SOD conflicts for
us to investigate, resolve and mitigate. In addition to saving us
considerable effort, the EZ-Compliance solution has enhanced the
accuracy of our conflicts identification, critical to maintain our
SOX certification for years to come”.
Director Finance Shared
Services
From Immucor (Baan 4; 550 employees):
“Unlike many software solutions that usually leave me with a mixed
feeling when assessing them, EZ-Compliance stood out as one that
delivers impressive results with limited setup. The ability to scan
in only minutes thousands of authorizations records, from Baan or
other corporate applications across several Immucor business units,
enables us to perform the SOD scan as often as desired. It is clear
for us at Immucor that EZ-compliance will save us time”.
Project Manager & Certified Six Sigma Black Belt
From Coopervision (Baan ERP-5; 5,000 employees):
“I
wish to tell you how impressed I am with your responsiveness to our
suggestions and requests. Normally there’s a lengthy release cycle
required to realize any changes in a software package. You may live
to regret being so accommodating because I will undoubtedly come up
with more!".
Financial Systems Support Manager
Other EZ-Compliance/EZ-Process customers:
-
Komatsu (Baan 4; 35,000 employees):
-
Magna (Baan 4; 82,000 employees):
-
Microchip (Baan 4; 4,300 employees):
-
Zebra Technologies (Baan 4; 2,500 employees):
-
Siemens (SAP + Baan 4; 67,000 employees):
-
Caterpillar / Solar Turbines (Baan 4; 2,500 employees):
-
Comcast (Oracle; 55,000 employees):
-
MDA Corporation (Baan ERP-5; 3,000 employees):
- etc ...
Special Year End Offers & Bonuses
|
OFFER A: Personalized EZ-Compliance demo Request and schedule your personalized EZ-Compliance demo (to be performed either during the Inforum conference or via web before/after), and DynaFlow ...
To request your personalized demo, contact SOD4Baan@EZ-Process.com |
|
OFFER
B: *FREE SOD SCAN* At no cost, DynaFlow will scan your Baan users-sessions authorizations and present you with the list of SOD conflicts identified by the EZ-Compliance scan. Your own users, your Baan sessions and your SOD risks. Always a true eye-opener for your organization ...! For more information about the pre-defined Baan Conflicting Sessions SOD Scan, visit http://www.ez-process.net/EZ-ProcessCD/ezcompliance_BaanSOD.htm. To request your FREE SOD scan, contact SOD4Baan@EZ-Process.com |
|
OFFER C: EZ-Compliance is the only SOD scan solution on the market ...
For more
information about this time limited offer, |
EZ-Process, to address all your BPM, Compliance and Workflow requirements
Available since 1999, the EZ-Process Suite has been selected
by Baan and non-Baan customers such as
Siemens, Comcast, Fujitsu, Solar Turbines,
MDA Corporation, GKN, etc...
seeking comprehensive features to support the following
business requirements:
-
Organization seeking to
automate their administrative/operations
processes:
Replacing unreliable and time consuming tasks (such as paper-driven approvals, form-driven transactions, complex collaboration, ...) Workflow automation is applicable to all areas and transaction types in your company. Organizations that implemented ERP solutions are also good candidates as they are looking ways to (1) maximize efficiency of ERP transactions by automating them and (2) to bridge "human-driven" tasks within the ERP transaction flows. Workflow Execution is then the ideal “layer" to achieve process automation and EAI integration. Supports wireless/remote operations.
-
Organization in need to achieve greater
integration
between diverse business/office applications:
Similar to Workflow, the EZ-Process BPM and invocation capabilities provide a single web-based interface for employees to know the correct sequence of work (ensuring TQM and on-going education/training) and to be able to launch directly the appropriate application for each task. Acting as the EAI infrastructure, EZ-Process provides a business process-driven interface to employees while moving to the background the technical complexity of the ERP applications.
-
Organization seeking to implement
Lean/Agile/ISO
operations:
In addition to comprehensive Business Process Modeling capabilities (compliant to Baan DEM or done in a stand-alone manner), EZ-Process also enables your organization to perform quantitative simulation & optimization analysis of your business processes to support all aspects of Lean and Agile operations. Finally, dynamic KPI ensures the automation of performance controls.
-
Organization in need to
secure & deploy their
corporate knowledge:
With employee turn-around rate increasing and re-organization layoffs more frequent, organizations feel the need to decentralize the business know-how (product & process related) and convert this knowledge into explicit documentation, able to be kept if the employee leaves and shared to increase productivity and reduce the learning curve of new staff.
-
Organization in need of
leveraging the knowledge of one
implementation to another one:
Often seen in large organization with multi-sites multi-years implementation rollout, EZ-Process is well positioned to provide the upcoming sites a view of the chosen processes, facilitating the Change Mgmt requirements and enabling an early business validation of the foreseen implementation.
-
Organization in need to deploy global processes to
unify
how operations are performed across the entire
organization:
Often a critical need of organizations that grew or are still growing by mergers and acquisitions, EZ-Process provides a centralized BPM infrastructure handling business processes, company wide documentation, business controls & risks management, role-driven employee performance support, transactions automation, etc...
-
Organization
in need to undergo
SOX/SOD certification/audit:
Unlike most SOX projects, EZ-Compliance enables organizations to leverage BPM assets to (1) ease their SOX implementation, (2) to enhance their certification success by using dynamic Access Controls Mgmt and Separation of Duties SOD scan.
To test EZ-Process
demos,
visit:
EZ-Process Demo Center
To request a demo or more information,
visit:
EZ-Process Demo/Information Request Form
